Privacy Compliance Management
Many organizations faces the challenge to get themselves ready for the implementation of the Protection of Personal Information Act. The implementation of POPI has brought many significant questions and uncertainties to the mind of the business management how to address such a huge and daunting task. If your organisation processes personal information of any kind, complying with the POPI Act is your challenge. It will be very difficult not to fall in this category since just merely paying employees and dealing with SARS is an indication of your organization dealing with personal identifiable information (PII).
Privacy
The concept of privacy practices are new to organizations. PrivacyManager and it's Partners understand the risk and costs involved and has, after intense studying of the POPI and GDPR Acts, developed an implementation methodology and a unique toolset to assist organizations to, in a controlled manner, address and implement the requirements to ensure compliance to the Acts. Our services focus on multiple stages of the implementation cycle to ensure compliance readiness and is grouped in these focus areas:
Privacy Practise
Awareness and Training
Self-assessment
Risk Profiling
Treatment Roadmap
Portfolio Management
Privacy Management
Inventory Mapping
Data Protection Incident Analysis
Document Control
Reviews and Inspections
Incident and Request Management
Timeline Notifications
Breach response management
Environmental Factors
Learn More
Privacy Consulting
Organisation Training
Privacy Subject Matter Expertise
Privacy Impact Assessments
Data Management
Administration
Recommendations
Project Management
Consultative scoping
Learn More
Privacy Service
Privacy Management as a Service
Self Service
Privacy Partnership
Privacy Compliance
Learn MorePOPI Readiness Assessment
|
A self-assessment toolkit has been created with small organisations in mind. It will be most helpful to small to medium sized organisations. Good information handling makes good business sense. You'll enhance your business's reputation, increase customer and employee confidence, and by making sure personal information is accurate, relevant and safe, save both time and money. Submit our compliance readiness questionnaire to assess your compliance with data protection law and find out what you need to do to make sure you are keeping people’s personal data secure. If you are unable to respond positively to the questions or once you have received your results and struggle to understand the feedback, a consultative scoping session could be a suitable course of action. Readiness Assessment |
Consultative Scoping
An independent and expert view, analyzing your privacy compliance challenges
Validation of your organizations appetite for compliance from a resources and timeframe perspective
Assess your data privacy risks and identify privacy controls against POPI
Clarification of a suitable implementation approach
Lessons learnt from other similar implementation challenges
Opportunity to form implementation partnerships
PrivacyPractise
Assess the current situation.
Awareness and training
Provide a full day awareness training workshop specifically to give you a better understanding of data privacy and how POPI will impact your organization
Control self-assessment assurance
Determining the overall organization compliance rating (GAP) assisted by a privacy expert in a facilitated work session with key organizational stakeholders
Risk profiling
The results of the self-assessment are used to assist organizations in establishing the risk profile for privacy, complimented by identified international privacy risks
Risk treatment roadmap
Compilation of a high-level roadmap for remedial privacy correction and implementation
Portfolio management
A project flight-plan indicating timeline, estimated costs and resource requirements for implementation activities
PrivacyManager
PrivacyManager provides a comprehensive and rich framework of tools to help organization continuously manage and maintain their POPI compliance.
Inventory mapping
A comprehensive privacy data inventory.
DPIA’s
A tool to help you identify and minimize the data protection risks of a new project as part of the POPI accountability.
Document control
A privacy document management control system holding all related privacy documents, correspondence, policies and operational procedures.
Reviews and inspections
Continuous monitoring, validation, inspections and application of privacy changes within the organization, e.g. adherence to the rights of the data subject, regulatory changes and implementations, processor and 3rd party conduct and other organizational governance requirements.
Incident and request management
Keeping track of all privacy activities ensuring control and that prompt response and proper communication protocols are adhered too.
Timeline notifications
Timeline scheduling of mandatory activities and controls to be conducted, linked to a specific role within the organization.
Breach response management
An incident response plan and event investigation process are imperative to privacy management in an organization. Security policies that defines a security incident with clear guidelines to handle data breaches must be applied and governed at the highest organizational level.
PrivacyConsult
Privacy Consulting expertise on your door-step.
Awareness Training
Making the organization aware and train key stakeholders on site by our privacy experts
Portfolio and Project Management
Providing project resources as fill-in for the execution of implementation activities defined in the risk treatment roadmap and project portfolio.
Privacy Subject Matter Expertise
Consult or privacy experts for both POPI and GDPR impact, insights, awareness, changes and challenges.
Privacy Impact Assessment (PIA)
Consult support for PIA execution
Data Management
Consultant support for data mapping and/or establishment of organizational data management practices.
PrivacyService
Privacy compliance as a service.
PrivacyManager as a Service (PMaS)
A pay-as-you-go service offering utilizing our privacy management system supported by consultants and administrative functionaries.